CharityVillage

Women's College Hospital (WCH) is an academic, ambulatory care hospital in Ontario with a focus on health for women, health equity and health system solutions. If you're ready to be part of a team that is revolutionizing the future of healthcare, then you will want to join an institution where the possibilities for innovation, new discovery and system thinking are limitless. Women's College Hospital is committed to equity, quality and patient safety as key professional values and essential components of daily practice.

Healthcare Revolutionized 2030 is our roadmap to the future. Our strategy is built on the pledge that the founders of our hospital made 140 years ago and reaffirms our commitment to providing equitable, accessible, best-in-class healthcare for everyone – meeting people where they are on their healthcare journey and partnering with them to reach their goals of living their healthiest lives possible. The stage has been set for Women’s to accelerate our priorities and capture the momentum to catapult our system forward to revolutionize healthcare for everyone.

FOR EXTERNAL APPLICANTS ONLY:

In this role you will have the ability to work remotely under WCH's hybrid work model. Your remote work location must be located within the province of Ontario and you must be legally eligible to work in Canada and reside in Ontario. 

We are seeking a focused, experienced, and results-oriented Regular Full-Time Manager of Privacy & Risk to join the Quality, Safety and Patient Experience Department here at Women's College Hospital. The ideal candidate will be responsible for developing, implementing, and overseeing privacy policies and risk management strategies to ensure compliance with regulatory requirements and protect patient confidentiality and other sensitive information. The Manager of Privacy & Risk will work collaboratively under the supervision of the Director of Quality, Safety and Patient Experience to support Women’s College Hospital’s privacy and risk management programs.

Summary of Duties, but not limited to:

• Oversees and has accountability for all aspects of privacy operations, including but not limited to:

• Leading privacy complaints, incident and breach investigations and making recommendations for key decisions for outcomes.
• Leading privacy impact assessments and reviewing contracts/agreements to ensure compliance with applicable privacy legislation, guidelines, and best practices.
• Leading regular system privacy audits, communicating findings and making recommendations for key decisions for outcomes.
• Analyzing privacy operations data, reporting findings, and making recommendations to the senior leadership team.
• Acting as the primary liaison with the Office of the Ontario Information Privacy Commissioner, Ontario Health, legal entities, and other organizations (other hospitals, TAHSN Privacy Working Group, etc.)
• Serving as the primary point of contact for privacy inquiries from patients.
• Developing, implementing, and monitoring privacy policies, procedures and standards.
• Developing and delivering privacy training, awareness activities and education; preparing privacy communications, alerts and web content.
• Acts as the key point of contact and subject matter expert across the organization on matters related to privacy, data security, and the interpretation/application of legislation and regulations under the Personal Health Information Protection Act (PHIPA) and the Freedom of Information and Protection of Privacy Act (FIPPA) to provide advice, risk assessment, and recommendations regarding privacy control
• Collaborates with internal program areas including IT, legal, other administrative departments, and clinical program areas to integrate privacy requirements into hospital operations. Stays informed of emerging privacy trends, regulations and industry best practices to ensure that the WCH’s privacy program meets legal requirements, industry standards as well as funder, partner and client expectations.
• Communicate and collaborate with members of the senior leadership team including the Corporate Privacy Officer.
• Responsible for leading and managing all Freedom of Information (FOI) requests.
• Supports the hospital’s risk management activities, including but not limited to:

• Leading patient safety and risk incident investigations
• Leading risk assessment activities as required by the hospital’s insurer (i.e. HIROC’s Risk Assessment Checklist)
• Analyzing patient safety and risk data sources to make recommendations to the senior leadership team for key decisions for outcomes.
• Developing, implementing, and monitoring risk management and safety policies, procedures and processes.
• Developing and delivering risk management education; preparing risk management communications, alerts and web content.
• Leading the management of claims including preparing briefs, securing records, tracking claims, and reporting to the hospital’s insurers.
• Managing legal undertakings including related correspondence, presentations, and briefings to senior leadership team for key decisions.
• Providing risk advice and consultation to clinical program areas.

As a role model and champion you will work to identify and integrate safe, best practices into daily activities to foster the delivery of safe and exemplary care.

The responsibilities described above are representative and are not to be construed as all-inclusive.

Qualifications/Skills:

• Completion of an undergraduate is required; healthcare discipline is an asset.
• A minimum of five (5) years of experience working in privacy in a healthcare setting.
• Successful completion of a post-secondary degree in a related field or combination of education and experience with evidence of continuing professional development in healthcare privacy and risk management.
• Professional privacy designation (CIPP/C or CIPM) or other related certification is required.
• Working knowledge of the Personal Health Information and Protection Act (PHIPA) and the Freedom of Information and Protection of Privacy Act (FIPPA); knowledge of other related legislation including the Public Hospitals Act and Health Care Consent Act.
• Significant experience with leading privacy breach management processes, conducting privacy audits, developing privacy policies, and implementing effective privacy training.  
• Experience conducting/reviewing privacy impact assessments (PIAs), addressing findings and implementing risk mitigation strategies. 
• Demonstrated understanding of risk management principles and their application in a healthcare setting.
• Excellent interpersonal and collaborative skills and an ability to deal professionally and discreetly with sensitive issues.
• Excellent oral and written communication skills with the ability to communicate objectively and effectively.
• Critical thinking and problem-solving skills with an ability to work independently and meet multiple deadlines.
• Proficiency with Microsoft Office (Word, Excel, PowerPoint, and Outlook).
• Experience working with shared systems an asset.
• Experience with Epic and RL Solutions an asset.
• Demonstrated satisfactory work performance and attendance history.
• Professional behavior and communication that meets the standards of the professional regulatory college or association, as applicable, and the standards of Women’s College Hospital.
• This position plays a critical role in acting as an advocate for safety and will demonstrate principles, practices and processes that will optimize a safe environment for all.

Why Choose Us?

• Be part of a dedicated team committed to excellence.
• Shape the future of healthcare in a supportive environment.
• Embrace the Best of Both Worlds and join our Hybrid Work Environment.
• Enjoy competitive benefits and an excellent defined benefit pension plan (HOOPP). 

We thank you for your interest, however, only qualified applications who are selected to be interviewed will be contacted. 

Women’s College Hospital is a fully affiliated teaching hospital of the University of Toronto and is committed to fairness and equity in employment and our recruitment and selection practices. We encourage applications from Indigenous peoples, people with disabilities, members of sexual minority groups, members of racialized groups, women and any others who may contribute to the further diversification of our Hospital community. Accommodation will be provided in all parts of the hiring process as required under our Access for People with Disabilities policy. Applicants need to make their requirements known in advance.